Enterprise mrg

This hub aggregates every CVE we track for Enterprise mrg, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Enterprise mrg.

• CVE-2020-27825A use-after-free flaw was found in kernel/trace/ring_buffer.c in Linux kernel (before 5.10-rc1). There was a race problem in trace_open and resize of cpu buffer running parallely on different cpus,...5.7Dec 11, 2020
• CVE-2020-27786A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free is...7.8Dec 11, 2020
• CVE-2020-1749A flaw was found in the Linux kernel's implementation of some networking protocols in IPsec, such as VXLAN and GENEVE tunnels over IPv6. When an encrypted tunnel is created between two hosts, the k...7.5Sep 9, 2020
• CVE-2020-10757A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with access to a DAX enabled storage to escalate their pri...7.8Jun 9, 2020
• CVE-2020-12826A signal access-control issue was discovered in the Linux kernel before 5.6.5, aka CID-7395ea4e65c2. Because exec_id in include/linux/sched.h is only 32 bits, an integer overflow can interfere with...5.3May 12, 2020
• CVE-2019-14898The fix for CVE-2019-11599, affecting the Linux kernel before 5.0.10 was not complete. A local user could use this flaw to obtain sensitive information, cause a denial of service, or possibly have ...7.0May 8, 2020
• CVE-2012-6685Nokogiri before 1.5.4 is vulnerable to XXE attacks7.5Feb 19, 2020
• CVE-2012-3460cumin: At installation postgresql database user created without password9.8Nov 21, 2019
• CVE-2014-8181The kernel in Red Hat Enterprise Linux 7 and MRG-2 does not clear garbage data for SG_IO buffer, which may leaking sensitive information to userspace.5.5Nov 6, 2019
• CVE-2013-6461Nokogiri gem 1.5.x and 1.6.x has DoS while parsing XML entities by failing to apply limits6.5Nov 5, 2019
• CVE-2013-6460Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents6.5Nov 5, 2019
• CVE-2019-11478SACK can cause extensive memory use via fragmented resend queue5.3Jun 18, 2019
• CVE-2019-11477Integer overflow in TCP_SKB_CB(skb)->tcp_gso_segs7.5Jun 18, 2019
• CVE-2019-3459A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel before 5.1-rc1.6.5Apr 11, 2019
• CVE-2018-16884A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_process() use wrong back-channel IDs and cause a use-...8.0Dec 18, 2018